Malware List.Numbers
Total Page:16
File Type:pdf, Size:1020Kb
Actively Tested (Immediately as significant updates and samples are available) (80% or higher detection rate) Occasionally Tested (If many new samples or significant updates are available) (60 - 80% detection rate) Tested when the mood strikes (60% or lower detection rates) For Comparison, not Excluded from future testing (read notes) Notes, comments, remarks, FAQ and everything else. an actual Antivirus Malware Family (by year) Malware Sample Type MD5 Hash Intego VirusBarrier 2013 10.7 Intego VirusBarrier X6 Avira 1.0.0.64 - 2.0.1.105 MacKeeper 2.5.1 - 2.8 (476) F-Secure 1.0 Avast 8.0 ESET 5.0 VirusBarrier Express 1.1.6 (79) Kaspersky Security 14 Dr Web 9.0.0 Webroot 8 Sophos 9 Comodo G Data AntiVirus for Mac Norton 12.6 (26) iAntivirus 1.1.4 (282) ProtectMac 1.3.2 - 1.4 eScan 5.5-7 Bitdefender (App Store) 2.21 BitDefender 2.30 - 3.0.6681 ClamXav 2.6.1 McAfee Internet Security for Mac* AVG AntiVirus for Mac Dr Web Light 6.0.6 (201207050) MacScan 2.9.4 X-Protect Panda Antivirus 1.6 Panda Antivirus 10.7.6 McAfee Endpoint Protection for Trend Micro Titanium 3.0 McAfee Security 1.2.0 (1549) Norton 11.1.1 (2) Trend Micro Smart Sur. 1.6.1101 McAfee VirusScan for Mac 8.6.1 FortiClient 5.0.6.131 Quick Heal Total Sec 1.0 McAfee Virex 7.7 (163) Magician 1.4.3 Vipre 1.0.51 Mac Malware Remover 1.1.6 1 # Mac 2 Price -> $29.99 Current users only (Discontinued) Free $38.95 and up €29,99 Free $39.99 Free (App Store) $39.95 €26 $39.99 Free Free $49.99 Free $44.99 $29.95 Free $49.95 Free $79.99 (Consumer) Free Free (App Store or download) $39.99 OS X’s Built-in malware protection Current users only (Discontinued) $49.99 $153 for 3 Macs (Business) $29.95 (possible discount) $109.65 for 3 Macs (Business) As of $25 on Amazon Discontinued $55 Discontinued Free Discontinued Free 3 Country ( based in ) -> (Intego) USA (Intego) USA Germany USA Finland Czech Republic Slovakia (Intego) USA Russia Russia USA UK USA Germany (Symantec) USA (Symantec) USA UK India Romania Romania UK USA Russia USA Spain Spain USA Japan USA (Symantec) USA Japan USA USA India USA USA 4 On-Demand Clean-Up On-Demand Real-Time Clean-Up On-Demand Clean-Up On-Demand Real-Time Clean-Up On-Demand Real-Time Clean-Up On-Demand Real-Time Clean-Up On-Demand Real-Time Clean-Up On-Demand Clean-Up On-Demand Real-Time Clean-Up On-Demand Clean-Up On-Demand Real-Time Clean-Up On-Demand Real-Time Clean-Up On-Demand Clean-Up On-Demand Real-Time Clean-Up On-Demand Clean-Up On-Demand Real-Time Clean-Up 5 OSX/MW2004 (2004) 1 Application 4d09a08a15cfd36e6fcdeb7ec52c17fb Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes Yes Yes No Yes Yes Yes No No Yes Yes Yes Yes Yes No Yes No No No 6 Renepo / Opener (2004) 1 Mach-O 80753666a54a8ae97bd6ed3a4e2f3702 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes Yes Yes Yes No No No Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes No No No About the applications excluded from future testing This list has a mix of applications that are discontinued, do not run properly on major versions of OS X, perform extremely poor and/or have multiple 7 Renepo / Opener (2004) 2 Script ce89947d715751bc66185e24e0cfb533 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes Yes No Yes Yes Yes Yes Yes No Yes Yes Yes Yes No No Yes No No No versions. If a company has multiple applications that all perform the same there is no need to list them all. McAfee is a good example of this and since 8 Renepo / Opener (2004) 3 Script e747abf717cd6627dde85e1da8c0585d Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes Yes No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes No No No October 2013 so is Panda, their 10.7.x version is now a VirusBarrier clone with the same functions and results. Renepo / Opener (2004) Script abe2b2b8f214b1322f589804a6e300f4 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes Yes No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes No No No ! 9 4 Discontinued applications that may still be in use by people and perform poorly are also excluded with the strong recommendation to those users to 10 Renepo / Opener (2004) 5 Script 3fd755673c2a43f0d3ffbdbc710df75a Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes No Yes Yes Yes No No Yes Yes Yes Yes Yes No Yes No No No upgrade to a newer version of that product or move on to a different brand. Discontinued applications that may still be in use by people and perform well are still tested and listed. Script 33757d80f452a3ce8f1b9515bc7decf5 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes No Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes No No No 11 Renepo / Opener (2004) 6 12 Renepo / Opener (2004) 7 Script a8e8c941fd63d6559d567b70a21f0e6f Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes No Yes Yes Yes No No Yes Yes Yes Yes Yes No Yes No No No Some applications in this list have no business calling themselves anti-virus/malware but were tested just to show users how poorly they perform. After these one time tests they are excluded from future testing until the vendor contacts us asking for a re-test or we hear the vendor has significantly 13 Renepo / Opener (2004) 8 Script ee46cec0aa5fbd68a21e469c23e84794 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No No No Yes Yes Yes Yes Yes No Yes No No No improved their product. 14 Renepo / Opener (2004) 9 Script f47c008838f4a7917dbcc601815288ef Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes User No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes No No No ! Samples marked in grey were acquired after the testing of these applications stopped. 15 Renepo / Opener (2004) 10 Script de479f6c77e388d2b91480066385e674 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No No No Yes Yes Yes Yes Yes No Yes No No No 16 Renepo / Opener (2004) 11 Script 9d6150f9deac83c0b3be62e0e07a1526 Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No Yes Yes Yes No Yes No No No No Yes Yes Yes Yes Yes No Yes No No No About XProtect XProtect is a list of blocked files and plug-ins that is maintained by Apple. Even though this is not an antivirus or antimalware application, just a 17 Renepo / Opener (2004) 12 Unknown 2f49d4ed817ee48ff97b3b8fdf96936e Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes No Yes No No No blacklist called on by OS X when a file is opened, I included it to show that in the majority of the cases OS X does not protect you.